Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/SGv0xLUVwdrYElBCAbKUB66QBEU.roa
File: SGv0xLUVwdrYElBCAbKUB66QBEU.roa (raw, json)
Hash identifier: FwJ1AkWaVoqNDG+aBy8KWtJbB/NWlcNAV1HdnruCSVg=
Subject key identifier: 48:6B:F4:C4:B5:15:C1:DA:D8:12:50:42:01:B2:94:07:AE:90:04:45
Certificate issuer: /CN=7e20b034e2c497b1884488def106972704765029
Certificate serial: 019E1B94CD74BDF102329577283BA175CB18
Authority key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/SGv0xLUVwdrYElBCAbKUB66QBEU.roa
Signing time: Tue 12 May 2026 09:46:37 +0000
ROA not before: Tue 12 May 2026 09:46:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 203048
IP address blocks: 212.134.159.0/24 maxlen: 24
212.134.161.0/24 maxlen: 24
212.134.175.0/24 maxlen: 24
212.134.204.0/24 maxlen: 24
212.134.244.0/24 maxlen: 24
212.135.17.0/24 maxlen: 24
212.135.19.0/24 maxlen: 24
212.135.140.0/24 maxlen: 24
212.135.149.0/24 maxlen: 24
212.135.151.0/24 maxlen: 24
212.135.156.0/24 maxlen: 24
212.135.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 May 2026 01:27:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1b:94:cd:74:bd:f1:02:32:95:77:28:3b:a1:75:cb:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e20b034e2c497b1884488def106972704765029
Validity
Not Before: May 12 09:46:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=486bf4c4b515c1dad812504201b29407ae900445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:08:08:e7:fe:38:8e:4b:b6:9c:6b:0c:36:a9:
cd:2d:ca:97:06:8e:1e:e9:a2:11:ad:27:ff:b5:05:
4b:c6:dd:6f:e2:0d:58:56:37:74:0f:01:8f:65:71:
c8:3b:f6:95:e9:87:b8:87:79:9d:a4:6b:ba:6e:44:
25:e9:dc:c0:88:2d:19:6c:2e:ae:96:7a:2f:63:0b:
91:f2:62:2a:d4:b6:85:f2:eb:84:c7:15:94:82:ec:
25:1f:fa:9e:be:c5:db:c3:38:24:9a:09:2b:ca:21:
e9:42:d2:b6:cb:bb:94:43:4b:95:e3:6c:7b:1c:a4:
13:69:ff:eb:f4:65:27:d2:23:24:fd:d1:90:44:a1:
21:62:0b:b9:a5:7b:ae:da:1f:64:37:d5:ab:d9:46:
06:ce:68:62:5e:3c:2b:b4:d8:bc:53:4e:46:00:12:
15:55:5c:18:09:bc:86:45:6a:60:d4:bc:2d:d5:be:
6d:80:f1:90:f9:02:72:21:9b:49:be:7b:87:af:6f:
b7:84:62:71:b4:80:3c:e1:09:46:1b:ba:33:ac:55:
ef:31:ff:dd:a5:ef:4a:ff:55:a3:b0:e4:fa:53:ae:
88:2a:b0:7d:72:90:ba:8e:a0:ed:ab:49:54:a0:ab:
8c:19:67:2a:d7:df:18:e5:15:5f:51:76:c3:1e:e9:
b9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:6B:F4:C4:B5:15:C1:DA:D8:12:50:42:01:B2:94:07:AE:90:04:45
X509v3 Authority Key Identifier:
keyid:7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/SGv0xLUVwdrYElBCAbKUB66QBEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.134.159.0/24
212.134.161.0/24
212.134.175.0/24
212.134.204.0/24
212.134.244.0/24
212.135.17.0/24
212.135.19.0/24
212.135.140.0/24
212.135.149.0/24
212.135.151.0/24
212.135.156.0/23
Signature Algorithm: sha256WithRSAEncryption
63:9c:4f:89:3c:60:ee:eb:23:1f:3d:50:33:48:b2:27:e5:ed:
8e:22:10:e5:9f:1a:14:25:11:ad:02:1d:b1:f6:34:d4:ae:76:
9d:f6:3e:dc:30:a8:bb:cd:7b:55:ec:a1:d4:a3:f7:cf:2e:a1:
42:d9:70:5e:13:4f:60:21:2a:03:60:81:71:61:bd:67:24:30:
7d:b2:3a:68:cb:79:0d:b3:8d:51:07:55:c9:56:88:f9:e9:df:
e9:33:a4:bb:f6:c5:55:7c:24:6c:0a:42:46:0c:a1:fc:62:d2:
51:32:ee:2a:99:8d:4c:9c:ab:6d:ac:8a:fa:06:e5:34:02:9e:
bc:95:6b:fd:da:c3:8c:a9:de:05:65:3b:f0:65:7d:21:08:e5:
db:43:d0:fe:ca:5c:22:42:7c:19:54:14:ce:70:b9:66:1b:92:
1d:ce:aa:a0:16:a0:f0:04:62:78:04:ac:3a:38:40:04:b4:a7:
b8:b5:f9:45:18:e8:05:4b:6d:d8:bd:f9:fc:3a:81:8c:08:0c:
1f:9a:6f:4a:ab:c2:07:9d:5d:84:87:35:61:52:a8:d1:82:48:
89:72:8f:3c:17:78:ae:6b:14:2e:ef:2f:d9:31:d0:fc:24:84:
26:1c:fa:ae:40:0b:bb:89:5f:c8:cc:1c:57:81:a0:5a:b3:f7:
c5:d1:14:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:17:54 2026 by rpki-client